Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

UK Considers Voluntary Software Disclosure

January 25, 2024
Reading Time: 3 mins read
in News

The U.K. government is contemplating the implementation of voluntary rules urging software vendors to responsibly disclose vulnerabilities in their systems. This initiative follows criticisms over the government’s management of legacy infrastructure. Respondents to a call for comments emphasized the need for government intervention to encourage software vendors to disclose vulnerability details promptly. The report revealed concerns about the systemic risk from vulnerabilities and malware in open-source software components and suggested that government guidance on vulnerability disclosure, a software bill of materials, certifications, and regulations could enhance transparency and cybersecurity.

Approximately 200 stakeholders participated in the call for comments, with respondents highlighting the fear of penalization and reputational damage as deterrents for businesses in reporting software vulnerabilities. The report emphasized that 80% of respondents agreed that more efforts should be made to ensure organizations disclose information quickly to prevent the spread of infection. Challenges associated with software security include risks from open-source software components, difficulties in obtaining adequate funding during the development cycle, and the use of unmonitored third-party open-source libraries. The U.K. government plans to publish voluntary practices for vendors, building on existing standards, to establish baseline expectations for software security.

The respondents recommended government guidance on a software bill of materials, certifications for software vendors and developers, and regulations mandating minimum standards of transparency. The proposed voluntary rules aim to improve the country’s cyber resiliency by setting baseline expectations for software security. The U.K. Department for Science, Innovation, and Technology led the consultation, and the government’s efforts to enhance cyber resiliency come amid pressure to address issues with legacy infrastructure in public offices. The release date for the software vulnerability management rules is unclear, but the government plans to involve software vendors, users, and agencies in developing cybersecurity guardrails and procurement processes.

 

Reference:
  • Government response to the call for views on software resilience and security for businesses and organisations

 

Tags: Cyber NewsCyber News 2024CybersecurityGovernmentJanuary 2024United KingdomVulnerabilities
ADVERTISEMENT

Related Posts

CBI Busts £390K UK Tech Scam

Spain Awards €12.3M Huawei Contracts

July 14, 2025
CBI Busts £390K UK Tech Scam

Grok-4 Jailbroken Via Exploit

July 14, 2025
CBI Busts £390K UK Tech Scam

CBI Busts £390K UK Tech Scam

July 14, 2025
Lovestruck Airman Leaks Secrets on App

Russian Pro-Player Arrested in Ransomware

July 11, 2025
Lovestruck Airman Leaks Secrets on App

Four Arrested in £440M Cyber Attack

July 11, 2025
Lovestruck Airman Leaks Secrets on App

Lovestruck Airman Leaks Secrets on App

July 11, 2025

Latest Alerts

WinRAR Zero-Day Exploit $80K on Dark Web

Google Gemini Flaw Hijacks Email Summaries

Wing FTP Server RCE Flaw Exploited

Fake Sites Push Investment Scams

Fake Firms Push Malware on Crypto Users

Severe WordPress Flaw 200K Sites at Risk

Subscribe to our newsletter

    Latest Incidents

    Supermarket Cyberattack Prompts Warning

    China Hacker Suspected in DC Law Firm Breach

    nius.de Cyberattack Leaks User Data

    Microsoft’s Outlook Long Outage

    Avantic Lab Affected By Ransomware

    $40M+ Stolen from GMX Crypto Platform

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial